Step 2.2: Create the Execution
Role (IAM Role)

In this step, you create an AWS Identity and Access Management (IAM) role using the
following predefined role
type and access permissions policy:

AWS Lambda (AWS service role) – This role grants AWS Lambda
permissions to assume the role.

AWSLambdaVPCAccessExecutionRole (access permissions policy) – This is the policy that you attach to the role. The
policy grants permissions
for the EC2 actions that AWS Lambda needs to manage ENIs. You can view this
AWS managed policy in IAM console.

For more information about IAM roles, see IAM Roles in the IAM User Guide. Use the following
procedure to create the IAM role.